• Design, curate, and maintain datasets for training and evaluating threat detection models • Build custom ML models for domain-specific threat classification and risk assessment • Engineer and optimize prompts for vision-language models to analyze session behavior • Create evaluation frameworks and benchmarks to measure accuracy, robustness, and reliability • Develop Python-based inference services within Dockerized environments • Integrate AI/ML capabilities with WebSocket, WebRTC, and low-level system interfaces for real-time analysis • Write clean, maintainable code and produce clear technical documentation • Monitor, troubleshoot, and optimize models in production for performance, scalability, and reliability

• Serve as the technical lead for FedRAMP High and DoD IL5 compliance, including continuous monitoring, control validation, and authorization activities • Implement, operate, and validate AWS security controls aligned with NIST 800-53 High baseline and DoD SRG requirements • Partner with cloud and platform engineering teams to review architectures, challenge non-compliant designs, and guide secure implementation • Author, manage, and track POA&Ms, including root cause analysis, remediation planning, and reporting to 3PAOs, sponsoring agencies, and DoD stakeholders • Coordinate vulnerability remediation and patching across AWS infrastructure and supporting services • Lead audit readiness and evidence collection efforts, including improving automation for recurring FedRAMP and IL5 deliverables • Provide secondary technical support for SOC 2, PCI DSS, and ISO 27001 compliance initiatives

• Support and execute security incident response activities, including triage, investigation support, containment coordination, lessons learned, and corrective action tracking • Develop and maintain incident response playbooks, runbooks, and escalation paths; participate in and help run tabletop exercises • Operate and improve enterprise security controls and tooling (e.g., endpoint protection/EDR, SaaS security controls, email security, access control workflows), ensuring reliable configuration and ongoing effectiveness • Partner with Observability Engineering to ensure security-relevant telemetry is available for investigations and response (without owning SIEM/telemetry platform administration) • Partner with Vulnerability Management to drive remediation execution, validate fixes where appropriate, and reduce repeat findings through hardening and control improvements • Coordinate security investigations with DevOps, IT, and Engineering teams; track actions through to closure and document outcomes • Support access governance and least-privilege initiatives, including periodic access reviews, privileged access workflows, and secure authentication controls • Create and maintain security documentation for processes, controls, and operational procedures to enable consistency across teams and geographies • Assist with security control evidence and operational readiness activities for compliance frameworks (e.g., SOC 2, ISO 27001, FedRAMP/GovRAMP, NIST 800-53) in partnership with Compliance and platform teams • Identify opportunities for automation to improve security operations efficiency (ticketing workflows, control checks, integrations, scripting)

• The Facility Security Officer (FSO) manages, administers and coordinates DoD and/or other agency industrial security programs and other security activities to ensure compliance with government and company security policies and procedures • The FSO will process personnel security clearance investigations and maintain all security documentation, files, clearance, and suitability rosters in accordance with government requirements • Responsibilities include administrating personnel security clearance processes, coordinating initial clearance submissions and periodic reinvestigations of staff, providing guidance and instruction to staff, collection of electronic fingerprinting, and providing follow-up clearance report statuses to managers for specific contracts • Maintain all security documentation and files in accordance with DCSA requirements • Provide Federal Agency or component personnel suitability processing support and coordination • Provide and document new employee security briefings and exit debriefings • Monitor and enforce annual refresher training completion and other annual employee security documentation requirements in the Learning Management System (LMS) • Investigate and report security incidents and Insider Threat reports • Provide security support to Human Resources, Contracts, and Proposal teams • Advise personnel of their reporting requirements • Interpret government policies for the development and implementation of security plans and procedures • Maintain strong working relationships with DCSA and/or other Federal Agency representatives to facilitate accurate information sharing, incident resolution, and Insider Threat response • Participate in the development and execution of security education programs including initial and annual refresher training